zeronetworks / rpcfirewallLinks
☆517Updated 5 months ago
Alternatives and similar repositories for rpcfirewall
Users that are interested in rpcfirewall are comparing it to the libraries listed below
Sorting:
- A centralized resource for previously documented WDAC bypass techniques☆559Updated 3 weeks ago
- A repository that maps commonly used attacks using MSRPC protocols to ATT&CK☆329Updated 2 years ago
- Aims to identify sleeping beacons☆596Updated 5 months ago
- A C# utility for interacting with SCCM☆637Updated 8 months ago
- Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…☆488Updated 2 years ago
- "Golden" certificates☆682Updated 9 months ago
- ☆380Updated 2 years ago
- Event Tracing For Windows (ETW) Resources☆387Updated 8 months ago
- A PowerShell armoury for security guys and girls☆473Updated last year
- Detect and respond to Cobalt Strike beacons using ETW.☆498Updated 2 years ago
- An effort to track security vendors' use of Microsoft's Antimalware Scan Interface☆247Updated 3 years ago
- Find vulnerabilities in AD Group Policy, but do it better than Grouper2 did.☆804Updated last month
- Cobalt Strike UDRL for memory scanner evasion.☆939Updated last year
- ☆247Updated last year
- Sysmon EDR POC Build within Powershell to prove ability.☆224Updated 4 years ago
- Scan installed EDRs and AVs on Windows☆585Updated 3 weeks ago
- ☆201Updated 7 months ago
- RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.☆264Updated last year
- ☆415Updated 2 years ago
- ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping …☆969Updated 2 weeks ago
- Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs☆750Updated last year
- Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories,…☆714Updated last year
- Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, …☆883Updated 6 months ago
- Collection of tools that reflect the network dimension into Bloodhound's data☆447Updated 2 years ago
- Check for LDAP protections regarding the relay of NTLM authentication☆492Updated 6 months ago
- ☆470Updated 6 months ago
- A tool to help query AD via the LDAP protocol☆549Updated 8 months ago
- Active Directory delegation management tool☆299Updated last year
- A POC for the new injection technique, abusing windows fork API to evade EDRs. https://www.blackhat.com/eu-22/briefings/schedule/index.ht…☆637Updated 2 years ago
- Project for identifying executables that have command-line options that can be obfuscated, possibly bypassing detection rules.☆174Updated 4 months ago